New research from Mimecast’s Threat Center has detailed a recent malware campaign delivered via sideloading. It targeted Microsoft’s App Installer feature in the Microsoft Store, which allows users to install Windows 10 apps from a webpage. A threat actor known for spreading Trickbot and BazarLoader, which deliver spam often resulting in ransomware attacks, is responsible.
The campaign is a prime example of the threats posed by sideloading attacks—but what exactly are they, how do they work, what damage can they cause to an organization, and how can they be prevented? Here is all you need to know about sideloading attacks.